From owner-freebsd-questions@FreeBSD.ORG Wed Mar 21 15:32:49 2007 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 4DB8B16A40D for ; Wed, 21 Mar 2007 15:32:49 +0000 (UTC) (envelope-from karol.kwiat@gmail.com) Received: from wx-out-0506.google.com (wx-out-0506.google.com [66.249.82.232]) by mx1.freebsd.org (Postfix) with ESMTP id 04F2613C4DE for ; Wed, 21 Mar 2007 15:32:48 +0000 (UTC) (envelope-from karol.kwiat@gmail.com) Received: by wx-out-0506.google.com with SMTP id s18so322311wxc for ; Wed, 21 Mar 2007 08:32:48 -0700 (PDT) DKIM-Signature: a=rsa-sha1; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:reply-to:user-agent:mime-version:to:cc:subject:references:in-reply-to:x-enigmail-version:openpgp:content-type; b=hCvpfPRejzKGq2glC1lvHMnGnJJ49FYi2lN/95AUpSuzhCy98GQ0FTdyxLoszo+4ZAFFnFFsX73muWoQ8ANupVlP5GHofuZjPT5FsXmJSA2FOa7fMlBCqng6wg8Wgw6QWEw2O5aT6LS3Q1X8BVJH+cgUxRR7KiW3vjD2JN4jnAw= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:reply-to:user-agent:mime-version:to:cc:subject:references:in-reply-to:x-enigmail-version:openpgp:content-type; b=lP1YlhmMTmhytcGjtjI7QUc7j4+aued99WP88l50gho09TFEOGD9VMAKyCQTzZCniTgpZPOC8Zr4hbsYvuRZyiQJpFtYYfivYDbdUbU+vS1NReoMM0F1PQWkmrqVvgeMHyJTVMUwN3RstLmXPaJxA2Scvtm3MiM4vkdILu48RTo= Received: by 10.90.105.19 with SMTP id d19mr2264530agc.1174491167817; Wed, 21 Mar 2007 08:32:47 -0700 (PDT) Received: from persephone.orchid.homeunix.org ( [84.10.174.25]) by mx.google.com with ESMTP id c28sm5880294nfb.2007.03.21.08.32.46; Wed, 21 Mar 2007 08:32:47 -0700 (PDT) Message-ID: <4601501C.3060605@gmail.com> Date: Wed, 21 Mar 2007 16:32:44 +0100 From: Karol Kwiatkowski User-Agent: Thunderbird 2.0b2 (X11/20070306) MIME-Version: 1.0 To: Jonathan Horne References: <42991.167.246.36.14.1174490156.squirrel@webmail.dfwlp.org> In-Reply-To: <42991.167.246.36.14.1174490156.squirrel@webmail.dfwlp.org> X-Enigmail-Version: 0.94.3.0 OpenPGP: id=06E09309; url=http://www.orchid.homeunix.org/carlos/gpg/0x06E09309.asc Content-Type: multipart/signed; micalg=pgp-sha256; protocol="application/pgp-signature"; boundary="------------enig9B67858751FA3461E811333B" Cc: freebsd-questions@freebsd.org Subject: Re: started playing with jails X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: karol.kwiat@gmail.com List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 21 Mar 2007 15:32:49 -0000 This is an OpenPGP/MIME signed message (RFC 2440 and 3156) --------------enig9B67858751FA3461E811333B Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Jonathan Horne wrote: > i started playing with jails today, and after following and re-followin= g the man > page and the freebsddiary article a few times, i finally got it to work= ! i have > one jail that starts on startup, and actually the hump i was getting ov= er was > getting the jail to actually kick off the sshd daemon. all that is wor= king, and > i can reboot my host, and then log into the jail that auto-starts via s= sh. >=20 > a couple of general questions that i cannot find the answers to: First let me say that you may be interested in sysutils/ezjail which takes care of creating and managing of multiple jails. Have a look at http://erdgeist.org/arts/software/ezjail/ > 1) if i want more than one jail, what is the proper syntax in the host'= s > /etc/rc.conf file for the jail_list=3D"jailed" statement? multiple jai= l_list > lines, or a single line that specifies more than one jail? $ grep "jail_list=3D" /etc/defaults/rc.conf jail_list=3D"" # Space separated list of names of jails > 2) what happens to a jail when i 'shutdown -p now' on the host? what c= aveats do > i need to watch for when rebooting or shutting down the host? I use multiple jails (max 3 per host) and never had any problems with that. I use ezjail, so jails are started/stopped by rc.d script. You may wait for more technical answer for that, though. > 3) i would like to build some ports in my jailed process, but for my > environment, this requires mounting the export from my main box on my n= etwork.=20 > so far, i am not able to mount a NFS share to /usr/ports (mount_nfs: /u= sr/ports: > Operation not permitted). I'm not really experienced with NFS but how about mounting NFS share in /usr/ports on host system and then using mount_nullfs to mount that into jails? Just like ezjail uses mount_nullfs to mount host's /usr/ports into jails. HTH, Karol --=20 Karol Kwiatkowski OpenPGP 0x06E09309 --------------enig9B67858751FA3461E811333B Content-Type: application/pgp-signature; name="signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="signature.asc" -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (FreeBSD) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFGAVAkezeoPAwGIYsRCIplAKCuVPrbGE+cLcHipCwMVqvCb7V+pwCeNyzu a7zCTAc94x8iIr7bVqKkOHo= =8Lg5 -----END PGP SIGNATURE----- --------------enig9B67858751FA3461E811333B--